Re: [Qemu-devel] Segfault using qemu-system-arm in smc91c111

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] Segfault using qemu-system-arm in smc91c111

From:	Peter Maydell
Subject:	Re: [Qemu-devel] Segfault using qemu-system-arm in smc91c111
Date:	Fri, 4 Sep 2015 11:45:11 +0100

On 4 September 2015 at 11:25, Richard Purdie
<address@hidden> wrote:
> We're seeing repeated segfaults in qemu-system-arm when we heavily use
> the network. I have a coredump backtrace:

> (gdb) print s->tx_fifo_done
> $1 = {99614720, 99614720, 99614720, 99614720}
> (gdb) print s->tx_fifo_done_len
> $2 = 99614719
>
> so it looks like tx_fifo_done_len has been corrupted, going beyond that
> is harder for me to figure out. Does anyone happen to know what might be
> going on here? This is with qemu 2.4.0.

That would suggest the rx_fifo buffer is overrunning (assuming
none of the other fields in the struct look like they've
been corrupted). Can you try putting
    assert(s->rx_fifo_len < NUM_PACKETS);
 before
    s->rx_fifo[s->rx_fifo_len++] = packetnum;
in smc91c111_receive(), and see if you hit that assertion?

Also, do you have a more specific reproduce case so I can try
to replicate the problem here?

thanks
-- PMM

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-devel] Segfault using qemu-system-arm in smc91c111, Richard Purdie, 2015/09/04
- Re: [Qemu-devel] Segfault using qemu-system-arm in smc91c111, Peter Maydell <=
  - Re: [Qemu-devel] Segfault using qemu-system-arm in smc91c111, Richard Purdie, 2015/09/04
    - Re: [Qemu-devel] Segfault using qemu-system-arm in smc91c111, Peter Maydell, 2015/09/04
    - Re: [Qemu-devel] Segfault using qemu-system-arm in smc91c111, Richard Purdie, 2015/09/04
    - Re: [Qemu-devel] Segfault using qemu-system-arm in smc91c111, Richard Purdie, 2015/09/04
    - Re: [Qemu-devel] Segfault using qemu-system-arm in smc91c111, Peter Maydell, 2015/09/04
    - Re: [Qemu-devel] Segfault using qemu-system-arm in smc91c111, Peter Crosthwaite, 2015/09/05
    - Re: [Qemu-devel] Segfault using qemu-system-arm in smc91c111, Richard Purdie, 2015/09/06
    - Re: [Qemu-devel] Segfault using qemu-system-arm in smc91c111, Peter Crosthwaite, 2015/09/06
    - Re: [Qemu-devel] Segfault using qemu-system-arm in smc91c111, Richard Purdie, 2015/09/06
    - Re: [Qemu-devel] Segfault using qemu-system-arm in smc91c111, Peter Crosthwaite, 2015/09/06

Prev by Date: Re: [Qemu-devel] [PATCH v9 05/10] move out net queue structs define
Next by Date: Re: [Qemu-devel] [kvm-unit-tests PATCH 2/2] arm/arm64 config: Fix arch_clean rule
Previous by thread: [Qemu-devel] Segfault using qemu-system-arm in smc91c111
Next by thread: Re: [Qemu-devel] Segfault using qemu-system-arm in smc91c111
Index(es):
- Date
- Thread